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Abstract. The reachability problem for vector addition systems is a central problem of 
net theory. This problem is known to be decidable but the complexity is still unknown. 
Whereas the problem is EXPSPACE-hard, no elementary upper bounds complexity are 
known. In this paper we consider the reversible reachability problem. This problem 
consists to decide if two configurations are reachable one from each other, or equivalently 
if they are in the same strongly connected component of the reachability graph. We show 
that this problem is EXPSPACE-complete. As an application of the introduced materials 
we characterize the reversibility domains of a vector addition system. 



1. Introduction 

Vector addition systems (VASs) or equivalently Petri nets are one of the most popular 
formal methods [EN94J for the representation and the analysis of parallel processes. Their 
reachability problem is central since many computational problems (even outside the realm 
of parallel processes) reduce to the reachability problem. Sacerdote and Tenney provided 
in [ST77] a partial proof of decidability of this problem. The proof was completed in 1981 
by Mayr [May81| and simplified by Kosaraju [Kos82j from |ST77| May81| . Ten years later 



|Lam92| . Lambert provided a further simplified version based on |Kos82j. This last proof 
still remains difficult and the upper-bound complexity of the corresponding algorithm is just 
known to be non-primitive recursive. Nowadays, the exact complexity of the reachability 
problem for VASs is still an open-problem. The problem is known to be EXPSPACE-hard 
[CLM76J. Note that the existence of a primitive recursive upper bound of complexity for 
the reachability problem is still open since the Zakaria Bouziane's paper [Bou98j introducing 
such a bound was proved to be incorrect by Petr Jancar | Jan08| . 

Recently, in |Lerl2] . a new proof of the reachability problem based on the notion of 
transformer relations inspired by Hauschildt [Hau90j was published. That proof shows that 
reachability sets are almost semilinear, a class of sets introduced in that paper that extends 
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the class of Presburger sets. An application of that result was provided; a final configuration 
is proved to be not reachable from an initial one if and only if there exists a forward inductive 
invariant definable in the Presburger arithmetic that contains the initial configuration but 
not the final one. Since we can decide if a Presburger formula denotes a forward inductive 
invariant, we deduce that there exist checkable certificates of non-reachability in the Pres- 
burger arithmetic. In particular, there exists a simple algorithm for deciding the general 
VAS reachability problem based on two semi-algorithms. A first one that tries to prove the 
reachability by enumerating finite sequences of actions and a second one that tries to prove 
the non-reachability by enumerating Presburger formulas. The Presburger inductive invari- 
ants presented in that paper is obtained thanks to strongly connected subreachability graphs 
(called witness graph and recalled in Section [7|). As a direct consequence, configurations in 
these graphs are reachable one from each other. 

In this paper we consider the reversible reachability problem that consists to decide 
if two configurations are reachable one from each other. We prove that this problem is 
EXPSPACE-complete. This result extends known result for the subclasses of reversible and 
cyclic vector addition systems |BF971 [CLM 76J. We also prove that the general coverability 
problem reduces to the reversible reachability problem (see Section [3]). As an application 
of the introduced materials we characterize the reversibility domains of a vector addition 
system in the last Section QTJ 

2. Projected Vectors 

We denote by Z and N the set of integers and natural numbers. In this paper, some com- 
ponents of vectors in Z rf are projected away. In order to avoid multiple dimensions, we 
introduce an additional element * Z, the set Z* = Z U {*}, and the set Zj of vectors 
z G Z^ such that I = {i \ z(i) = *}. Operations on Z are extended component-wise into 
operations on Z^ by interpreting * as a projected component. More formally we denote by 
zi + Z2 where zi,Z2 G Zj? the vector z G Z^ defined by z(i) = zi(i) + for every i g" I. 
Symmetrically given z G Z^ and an integer k G Z, we denote by kz the vector in defined 
by (kz)(i) = k(z(i)) for every i g" /. The usual order < over Z is extended over Z* into 
the unique total order < satisfying z < -k for every z G Z*. The relation < is extended 
component- wise over Z^. 

Example 2.1. We have k(*, 1) = (★, k) even if k = 0. We also have (*, 5) — (★, 2) = (*, 3) 
and (★, 1) + (*, 2) = (★, 3). We have • • • < -1 < < 1 < • • • < *. 

The projection of a vector z G by eliminating components indexed by L C {1, . . . , d} 
is the vector in Zj uL defined by 7T£,(z)(«) = z{i) for every i L. The projection of a set 
Z C Zj by eliminating components indexed by L is defined as expected by 7T£,(Z) = {vr^(z) | 
z G Z}. 

Example 2.2. Let L = {1}. We have vr L (1000, 1) = (*, 1) and vr L (4,*) = (*,*). We also 
have vr L ({(2, 0), (1, 1), (2, 0)}) = {(*, 0), (*, 1), (*, 2)}. 

Let z G Zf. We denote by HzH^ the natural number equals to if I = {1, . . . , d} and 
equals to max^/ |z(i)| otherwise. Given a finite set Z C Z; we denote by HZ^ the natural 
number 

ni£ix z ^2 Halloo if Z is non empty ctiid if Z is empty. 
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3. Vector Addition Systems 

A Vector Addition System ( VAS) is a finite set A C Z d . Vectors a G A are called actions and 
vectors c£Kf with N* = NU{*} are called configurations. A configuration in N d is said to be 
standard and we denote by the set of configurations c£fff such that I = {i \ c(i) = *}. 
Given a word a = ax . . . a& of actions aj £ A we denote by A(cr) the vector in Z d defined 
by A(cr) = ^j =1 aj. This vector is called the displacement of a. We also introduce the 

vector A/(cr) = 7r/(A(cj)). A run p from a configuration x € Nj to a configuration y 6 N; 
labelled by a word a = ai . . . a& of actions a., 6 A is a non-empty word p = Cq . . . of 
configurations Cj 6 such that Co = x, = y and such that Cj = Cj_i + TTr(a.j) for every 
j € {1, . . . , k}. Note that in this case p is unique and y — x = A/(cr). This run is denoted 
by x — >■ y. The set I is called the set of projected components of p. The projection ttl(p) 
of a run p = Co . . . c/% by eliminating components indexed by L C {1, . . . , d} is defined as 
expected as the run ttl(p) = ^l( c o) ■ ■ ■ ^(cfc)- Observe that if p is the run x — > y then 
ttl(p) is the run 7Tx,(x) — > vri(y). The following lemma provides a simple way to deduce a 
converse result. 

Lemma 3.1. Let L be a set of indexes and c be a configuration such that there exists a run 
from 7T£,(c) labelled by a word a. If c{i) > \o~\ HAH^ for every i € L then there exists a run 
from c labelled by a. 

Proof. Let c G N; be a configuration such that there exists a path from 7Tl(c) labelled by a 
word cr = ai . . . ajt where a^ € A. Let us introduce the vector Cj = c+7rr(ai + . . ,+a.j). Since 
there exists a run from 7Tl(c) labelled by a we deduce that 7Ti(cj) £ N^ u£ . Observe that 
for every j € {0, . . . , k} and for every i / we have Cj(i) > c(i) — \a\ HAHoq. In particular 
if c(i) > \a\ | (Alloc f° r every i € L\I we deduce that Cj G Nj. Therefore p = Co . . . is the 
run from c labelled by a. □ 

Example 3.2. p = (2, 0)(1, 1)(0, 2) is the run (2,0) ( ~" 1 ' 1)( ~ 1 ' 1) > (0,2). Let L = {1} and 
observe that vr L (p) = (*, 0)(*, 1)(*, 2) is the run (*,0) ( ~ 1 ' 1)( ~ 1 ' 1) > (^2). 

Let x and y be two standard configurations. When there exists a run from x to y 
we say that y is reachable from x and if there also exists a run from y to x we say that 
(x, y) is in the reversible reachability relation. The problem of deciding this last property is 
called the reversible reachability problem. This problem is shown to be EXPSPACE-hard by 
introducing the coverability problem. Given two standard configurations x and y we say that 
y is coverable by x if there exists a standard configuration in y + N d reachable from x. The 
coverability problem is known to be EXPSPACE-complete |CLM76( IRac78| . By reducing 
the coverability problem to the reversible reachability problem we get the following lemma. 

Lemma 3.3. The reversible reachability problem is EXPSPACE-hard. 

Proof. We consider a vector addition system A. We first observe that we can add to the 
vector addition system A additional actions of the form (0, . . . , 0, — 1, 0, . . . , 0) without mod- 
ifying the coverability problem. Thanks to this transformation a standard configuration y is 
coverable from a standard configuration x if and only if y is reachable from x. We introduce 
the VAS V in dimension d + 2 defined by V = ((0,0) x A) U {(-1, 1, -y), (1, -1, x)}. 

Let us prove that (1,0, x) and (0,1,0) are in the reversible reachability relation of V 
if and only if y is coverable from x in A. In fact if y is coverable from x in A, then y is 
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(1,-W) 



(0,-1,1 




(0,1,-1) (0,-1,1) 



Figure 1: A subreachability graph G and the subreachability graph ttl(G) with L = {2,3}. 



reachable from x thanks to the additional actions (0, . . . , 0, —1, 0, . . . ,0). Hence there exists 
a run from x to y labelled by a word ai . . . a& of actions a^ G A. The following runs shows 
that (1,0, x) and (0,1,0) are in the reversible reachability relation of V: 



(0,0,ai)...(0,0,afc) , , 

1,0, x) > (l,0,y) 



(0,1,0) (1,0, x) 



Converselly, let us assume that (1,0, x) and (0,1,0) are in the reversible reachability rela- 
tion of V. Hence there exists a run from (1,0, x) to (0,1,0) labelled by a word a. We 
consider the maximal prefix w of a in ((0,0) x A)*. This word has the special form 
w = (0, 0, ai) . . . (0, 0, afc). Observe that w is the label of a run from (1,0, x) to a stan- 
dard configuration of the form (1,0, z). We deduce that ai . . . a& is a the label of run in 
A from x to z. Moreover, since (1,0, z) ^ (0,1,0) we deduce that w is a strict prefix 
of a. Let v € V such that wv is a prefix of a. By maximality of a we deduce that 
v G {(-l,l,-y),(l,-l,x)}. Since (1,0, z) + v > 0, we get v = (-1,1, -y). Thus z > y 
and we have proved that y is coverable from x in A. 

As a direct consequence, the reversible reachability problem is EXPSPACE-hard. □ 



4. Subreachability Graphs 

A subreachability graph is a graph G = (Q,T) where Q C N; is a non empty finite set of 
configurations called states and TC QxAxQisa finite set of triples (x, a, y) £ QxAxQ 
satisfying x A- y called transitions. The set / is called the set of projected components of 
G and the subreachability graph is said to be standard if / is empty. A witness graph is a 
strongly connected subreachability graph (see Fig. Q]for examples). The projection vrx(i) of 
a transition t = (x, a, y) by eliminating components indexed by L C {1,... , d} is defined 
by vrx(t) = (7Tl(x), a, vr^(y)) and the projection of the set of transitions T is defined by 
7Tl(T) = {7Tl(£) I t G T}. The projection itl(G) of a subreachability graph G = (Q,T) is 
the subreachability graph ttl(G) = (itl(Q), ttl(T)). 

Example 4.1. A standard subreachability graph G = (Q,T) and the subreachability graph 
ttl{G) obtained from G by eliminating components indexed by L = {2,3} are depicted in 

Fig.m 

A path in a subreachability graph G from a configuration x G Q to a configuration y G Q 
labelled by a word a = ai . . . a& of actions slj G A is a word p = t\ . . . t\- of transitions tj G T 
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of the form tj = (cj_ 1, aj, Cj) with Co = x and c/% = y. We observe that the word p is unique. 
This path is denoted by x — >q y. Let us observe that in this case p = Cq . . . is the unique 
run x — > y. In particular if a path x -^>g y exists then the run x — > y also exists. Note 
that conversely if there exists a run x —> y then there exists a subreachability G such that 
x y- Such a G is obtained by introducing the set of states Q = {co, . . . , c^,} and the set 
of transitions T = {t\, . .. where tj = (cj_i, a^, Cj). A path x y is called a cyc/e if 
x = y. The cycle is said to be simple if Cj a = Cj 2 with < j% implies j% = and j'2 = fc. 
The projection ttl(p) of a path p = t% . . . tj. in G by eliminating components indexed by 
L C {1, . . . , c£} is the path ttl(p) = ^i(^i) • • • ^L{tk) in ttl(G). Observe that the projection 
of a path x -^>c y by eliminating components indexed by L is the path 7Tl(x) — ^xTC?) ^iXy)- 
The Parikh image of a path is the function ^, : T — > N defined by is the number of 
occurrences of t in this path. A cycle is said to be total if its Parikh image fi satisfies fi(t) > 1 
for every t € T. 

Example 4.2. Let us come back to the standard witness graph G depicted in Fig. [TJ Let 

us consider the cycle (1,1,0) - — — — ■ — (1)1; 0) in G. Its projection by eliminating 

components indexed by L = {2,3} is the cycle (1,*,*) - — — — : — ^n L (G) (Ij*)*) i n the 
witness graph ttl(G) also depicted in Fig. [TJ 

A word a G A* is said to be forward iterable from a configuration c if there exists a run 
c —> y such that c < y. In this case the configuration c* = ttl(c) where L = {i \ c(i) ^ y(i)} 
is called the forward limit of a from c. We observe that a is forward iterable from c if and 

only if for every n € N there exists a run c — y y n . In that case L is the minimal set of 
indexes such that vri(y n ) does not depend on n. Symmetrically a is said to be backward 
iterable from a configuration c if there exists a run x — > c such that c < x. In this case the 
configuration c* = 7Tl(c) where L = {i \ c(i) ^ x(i)} is called the backward limit of a from 
c. 

Example 4.3. The action a = (0,-1,1) is forward iterable from x = (0,*, 0) since 

(0,*, 0) — >■ (0,*, 1). Observe that in this case (0,*,0) — > (0,*,n) for every n G N. The 
forward limit of a from (0,*, 0) is (0,*,*). 

A configuration c is said to be forward pumpable by a cycle q q if o" is forward 
iterable from c with a forward limit equals to q. Note that in this case q is unique since 
it satisfies q = 717(c) where / is the set of projected components of G. Symmetrically a 
configuration c is said to be backward pumpable by a cycle q -^>g q if a is backward iterable 
from c with a backward limit equals to q. 

Example 4.4. Let us come back to the witness graph 717,(6?) depicted in Fig. [TJ Observe 
that (0,*, 0) is forward pumpable by (0,*,*) — — '^-k l {g) (0>*>*)- 



5. Outline 

The remainder of this paper is a proof that the reversible reachability problem is in EX- 
PSPACE. We prove that if a pair (x, y) of standard configurations are in the reversible 
reachability relation then there exist runs from x to y and from y to x with lengths bounded 
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by a number double exponential in the size of (x, A, y) with the binary encoding for num- 
bers. Using the fact that NEXPSPACE=EXPSPACE, and that double exponential numbers 
can be stored in exponential space, one obtain the EXPSPACE upper bound. These "short" 
runs are obtained as follows. 

Theorem 16.31 gives a bound on the size of the Parikh image of a cycle in a witness graph 
to achieve a particular displacement vector, using a result of Pottier [Pgt91j. This result 
is used in Section [7J which considers the special case of reversible witness graphs in which 
each path can be followed by another path such that the total displacement is zero. In 
Theorem 17.31 it is shown that a reversible witness graph possesses a "short" total cycle that 
has a zero displacement. 

Section [9] takes an arbitrary witness graph G and asserts the existence of a set of indexes 
J such that the witness graph ttj{G) has a "small" number of states and such that states 
q of G that are not "too" large are forward and backward pumpable by "short" cycles in 
vrj(G). 

The development culminates with the main result in Section [TUJ There, we consider a 
reversible witness graph where x and y are two states. This graph is finite but potentially 
very large. One then uses the result from Section [9] to generate a reversible witness graph 
7Tj(G) satisfying the previous conditions in such a way that x and y can be considered as 
not "too" large configurations. Most of the work involves showing how to replace arbitrary 
path between x and y by "short" paths by exploiting the fact that x and y are pumpable 
to move from vrj(G) back to G. 

6. Displacement Vectors 

A displacement vector of a witness graph G is a finite sum of vectors of the form A(<r) = 
X^=i a i where a = ai . . . a& is a word labelling a cycle in G. We denote by the set 
of displacement vectors. Observe that Zq is a submonoid of Displacement vectors 

are related to Kirchhoff functions as follows. A Kirchhoff function for a witness graph 
G = (Q,T) is a function ft : T — > N such that the functions in(ft), out (ft) : Q — > N defined 
bellow are equal. 

in(ft)(x) = A»(*) out (p) (x) = ft(i) 

i£Tn(QxAx{x}) (£Tn({x}xAxQ) 
A Kirchhoff function fi : T — > N is said to be total if fi(t) > 1 for every t € T. 

Lemma 6.1 (Euler's Lemma). A function fj, is a Kirchhoff function for a witness graph G 
if and only if ft is a finite sum of Parikh images of cycles in G. In particular a function ft 
is a total Kirchhoff function if and only if ft is the Parikh image of a total cycle. 

As a direct consequence of the Euler's Lemma, we deduce that a vector z £ Z, d is a 
displacement vector of G if and only if there exists a Kirchhoff function \i for G satisfying 
the following equality: 

z = Yj ^ a 

i=(x,a,y)6T 

In this case z is called the displacement of ft. 

Example 6.2. Let us come back to the witness graph tvl(G) depicted in Fig. [TJ A function 
fj, : ttl(T) — > N is a Kirchhoff function for ttl(G) if and only if fJ,(t\) = ft ^2) where t\ = 
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((1,*,*), (—1, 1, 1), (0,*,*)) and t% = ((0,*,*), (1, —1, —1), (1,*,*)). In particular the set of 
displacement vectors of 7Tl{G) satisfies Z nL ^ = {z G Z 3 | z(l) = A z(2) + z(3) = 0}. 

The following theorem shows that the displacement vectors z G 7jq are displacement of 
Kirchhoff functions \i for G such that ||/i||oo = rnaxt G r /x(t) is bounded by a polynomial in 
|Q|, | [ A[ |oo, and HzH^ with a degree depending on d. 

Theorem 6.3. Vectors z G Zc are displacement of Kirchhoff functions \x such that the 
following inequality holds where q = |Q|, a = HAH^, and m = HzH^: 

IHloo < (q d+1 a(l + 2a) d + m) d 

Proof. We first recall a "Frobenius theorem" proved in |Pot91] , Let H G Z rfxn be a matrix 
and let us denote by h{j for each i G {1, . . . , d} and j G {1, . . . , n} the element of H at 
position We denote by ||-ff||i )00 the natural number maxi<j<^ X^j=i Given a 

vector v G N n , we introduce the natural number ||v||i = X]j=i v (i)- Let V be the set of 
vectors v G N n such that Hv = 0. Recall that V is a submonoid of (N n ,+) generated by 
the finite set min(V\{0}) of minimal elements for <. From |Pot91j we deduce that vectors 
v G min(V\{0}) satisfy the following inequality where r is the rank of H: 

||v||i < (i + ||fr||i i00 y 

Observe that if a = then z = and the theorem is proved with the Kirchhoff function 
H defined by /j,(t) = for every t G T. So we can assume that a > 1. Since every cycle 
labelled by a word a can be decomposed into a finite sequence of simple cycles labelled 
by words a%, ■ ■ ■ ,o~k such that A (a) = X^=i ^( a j) we deduce that the set of displacement 
vectors is the submonoid of (Z rf , +) generated by the set Z of non-zero vectors z = A(<r) 
where a is the label of a simple cycle. Since the length of a simple cycle is bounded by the 
cardinal q of Q, we get HZH^ < qa. As a corollary we deduce that the cardinal k of Z is 
bounded by k < (1 + 2qa) d — 1 (the —1 comes from the fact that vectors in Z are non-zero). 

Let us consider a vector z G Z(j and let us introduce a whole enumeration z±, . . . , z& of 
the vectors in Z and the following set V where n = k + 1 : 

d k 

V = {v G N™ | A S>0>i(*) " v(n)z(i) = 0} 

i=l j=l 

We observe that V is associated to a matrix H G Z rfxn . The rank of if is bounded by d and 
ll# II l.oo — kqci + m - We deduce from the Frobenius theorem that vectors v G min(V\{0}) 
satisfy the following inequality: 

I v| |i < (1 + kqa + m) d < (q d+1 a{\ + 2a) d + m) d 

Since z G Z^ and Tjq is the submonoid generated by (Z rf ,+) generated by Zi,...,z&, we 
deduce that there exists «i, . . . , G N such that z = Ylj=i v j z j- Observe that the vector 
v G N n defined by = Vj if j G {1, . . . , k} and v(n) = 1 is in V. Hence, there exists v G V 
such that v(n) = 1. In particular there exists another vector v G min(V\{0}) such that 
v(n) = 1. Observe that for every j G {1, . . . , k} there exists a function Xj that is the Parikh 
image of a simple cycle such that Zj is the displacement of Xj. We introduce the Kirchhoff 
function fi = X^j=i v (j)^i- Since v G V and v(n) = 1 we deduce that the displacement 
of [i is z. The theorem is proved by observing that fj,(t) = ^2j = iv(j)Xj(t) < ||v||i since 
Xj(t) G {0,1}. ' ' □ 



8 



J. LEROUX 



7. Reversible Witness Graphs 

A witness graph G is said to be reversible if for every path x —}q y there exists a path 
y Ac x such that A(tt) + A(v) = 0. Observe that standard witness graphs are reversible 
since the condition A (it) + A(v ) = is implied by the two paths. 

Example 7.1. The witness graphs depicted in Fig. [I] are reversible, but the witness graph 
({*},{(*, 1,*)}) is not. 

Let us recall that a submonoid Z of (Z d , +) is said to be a subgroup if — z £ Z for every 
z £ Z. The following lemma provides two characterizations of the reversible witness graphs. 

Lemma 7.2. A witness graph G is reversible if and only if Zq is a subgroup of (Z rf , +) if 
and only if the zero vector is the displacement of a total Kirchhoff function. 

Proof. Assume first that G is reversible and let us prove that Zq is a subgroup of (Z d , +). 
Let us consider a cycle x Ag x - Since G is reversible, there exists a cycle x Ag x such that 
A(it) + A(v) = 0. We deduce that — Zg = Zg since vectors in Zg are finite sums of vectors 
A(u) where u is the label of a cycle in G. Therefore Zq is a subgroup of 

Now let us assume that Zq is a subgroup of (Z d , +) and let us prove that the zero vector 
is the displacement of a total Kirchhoff function. Since G is strongly connected, there exists 
a total cycle x —}q x. Observe that z = A(u) is in Zq. Since Zq is a subgroup we deduce 
that — z € Zg- Hence — z is the displacement of a Kirchhoff function A. Let A' be Parikh 
image of x Ag x and observe that \x = A + A' is a total Kirchhoff function. Moreover the 
displacement of fi is — z + z = 0. 

Finally, let us assume that the zero vector is the displacement of a total Kirchhoff 
function /j, and let us prove that G is reversible. Let us consider a path x Ag y. Since G is 
strongly connected, there exists a path y Ac x. Let us consider the Parikh image A of the 
cycle x -^Ag x an d let m = 1 + 1 1 A| |oo • W e observe that fi' = mfj. — A is a total Kirchhoff 

function and the Euler's Lemma shows that // is the Parikh image of a cycle x —¥q x. From 
// = m/i — A we deduce that A(/3) = mO — A(ua). Let us consider v = a (3 and observe that 
y Ag x and A (it) + A(u) = 0. Thus G is reversible. □ 

The following theorem shows that if G is a reversible witness graph then the zero vector is 
the displacement of a total Kirchhoff function \x such ||//||oo can be bounded by a polynomial 
in |Q| and HAHoo with a degree depending on d. 

Theorem 7.3. Let G be a reversible witness graph. The zero vector is the displacement 
of a total Kirchhoff function fx such that the following inequality holds where q = |Q| and 

CL = 1 1 A 1 1 oo .' 

IH|oo<(g(l + 2a)) d ( d+1 ) 

Proof. Since G is strongly connected, every transition t 6 T occurs in at least one simple 
cycle. We denote by Aj the Parikh image of such a simple cycle and we introduce the 
Kirchhoff function A = X^teT ^ e have A(f) £ {1, . . . , |T|} for every t £ T. We introduce 
the displacement z of A. Since G is reversible, we deduce that — z is the displacement 
vector of a Kirchhoff function for G by Lemma 17.21 As Hz^ < [T|ga, |T| < gjA|, and 
|A| < (1 + 2a) d we deduce that ||z||oo < q 2 a(l + 2a) d . Theorem 16.31 shows that — z is the 
displacement of a Kirchhoff function A' satisfying the following inequalities: 

llA'Hoo < {q d+1 a{l + 2a) d + q 2 a{\ + 2a) d ) d < {q d+1 2a{\ + 2af) d 
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Let us consider the total Kirchhoff function fj, = A + A'. Observe that the displacement of fx 
is the zero vector and since HAHoo < \T\ <q(l + 2a) d < (q d+1 (l + 2a) d ) d we get the theorem 
with: 

IHloo < (q d+1 2a(l + 2a) d ) d + (q d+1 (l + 2a) d ) d < (q(l + 2a)) d ^ □ 

8. Extractors 

In this section we introduce a way for extracting "large" components of configurations. An 
extractor is a non increasing sequence A = (\ n )i<n<d of natural numbers X n € N. Let 
X C N^. An excluding set for (A,X) is a set of indexes J such that x(z) < A|j| +1 for every 
i ^ J and for every x € X (notice that even if A^+i is not defined, when \J\ = d the domain 
of the universal quantifier "for every i ^ J" is empty). Since A is non increasing we deduce 
that the class of excluding sets for a couple (A, X) is stable by intersection. As this class 
contains {1, . . . , d} we deduce that there exists a unique minimal excluding set J for (A, X). 
By minimality of this set we deduce that for every i € J there exists x € X such that 
x(i) > A|j| (notice once again that even if Ao is not defined, when | J\ = the domain of the 
universal quantifier "for every i E J" is empty). We denote A(X) the set 7Tj(X) where J is 
the minimal excluding set for (A, X). 

Example 8.1. Let A = (5,3,2) be an extractor. We have A({(1,8, 1)}) = {(1,*, 1)}, and 
A({(1,8, 1), (3, 1,1)}) ={(*,*, 1)}. 

A set X C is said to be normalized for A if A(X) = X. As a direct consequence 
of the following lemma we deduce that A(X) is normalized for A for every set X C Nj. 
We say that x G is normalized for A if {x} is normalized for A, i.e A({x}) = {x} or 
equivalently x(i) < Aijm i for every i I. Observe that if every state x £ X is normalized 
then A(X) = X. 

Lemma 8.2. Let X C Nj and let L be a set of indexes included in the minimal excluding 
setof(\,X). Then A(X) = A(vr L (X)). 

Proof. Note that if X is empty the result is immediate so we can assume that X is non 
empty. Let J be the minimal excluding set of (A, X) and observe that J is an excluding set 
for X' = 7Ti(X). In particular the minimal excluding set J' for X' satisfies J' C J. Since 
J' is an excluding set of (A,X') we deduce that x'(i) < A|j/| +1 for every i J'. Hence 
7TL(x)(i) < A|j/| + i for every x € X. As x < ttl(x) we deduce that J' is an excluding set of 
(A,X). By minimality of J we get the other inclusion J C J'. Thus J = J' and we have 
proved that A(X) = A(ttl(X)). □ 

9. Pumpable Configurations 

In this section we show that for arbitrary witness graph G, there exists a set J of indexes 
such that the number of states of vrj(G) is "small" and such that states with "small" size 
of G are pumpable by "short" cycles of irj(G). The proof of this result is inspired by the 
Rackoff ideas |Rac78j. All other results or definitions introduced in this section are not used 
in the sequel. 
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Theorem 9.1. Let G be a witness graph with a set of states Q C Nj, and let s G N>o be 

a positive integer. We introduce the positive integer x = (1 + ||A||<xj)s. There exists a set 
of indexes J such that the number of states ofirj(G) is bounded by x dd and such that every 
state q 6 Q such that |[q[|oo < s is forward and backward pumpable by cycles ofirj(G) with 
lengths bounded by dx dd . 

Such a set J is obtained by introducing the class of adapted extractors. An extractor A 
is said to be adapted if the following inequality holds for every n G {2, ... , d}: 

A n -1 > n+1 ||A||oo + ^« 

Lemma 9.2. Let A be an adapted extractor, G be a witness graph with a set of states Q C Nj, 
and let J be the minimal excluding set for (A, Q). For every state q G Q there exists a run 
q A- y such that vrj(q) — >kj{G) n j(y) an d suc h that the bounds \u\ < 2~^|/|<n<|J| A^ +1 ~", 
and y(j) > A| j| for every j G J hold. 

Proof. Since Q C N; we deduce that JC J, We introduce a parameter k G N and we prove 
the lemma by induction over k under the constraint \J\ — \L\ < k. Observe that if k = 
then L = J and the property is proved with u = e and y = q. Assume the property proved 
for a natural number k G N and let us consider a witness graph G = (Q,T) with a set of 
projected components / such that | J| — |J| < k+ 1 where J is the minimal excluding set for 
(A, Q). We consider a state q G Q. If Q is normalized for A then J = L and the property 
is proved. So we can assume that Q is not normalized for A. We deduce that there exists a 
state in Q that is not normalized. Since G is strongly connected, there exists a path q P 
with a minimal length such that p is not normalized. Let us observe that the number of 
states in Q that are normalized is bounded by Aj^,^. By minimality of the length of a we 

deduce that |cr| < 

We introduce the minimal excluding set K for (A,{p}). Observe that I is strictly 
included in K since p is not normalized. Moreover K is included in J since J is an excluding 
set for (A, {p}). Lemma [8.21 shows that J is the minimal excluding set of (A, 7r/<(Q)). Observe 
that | J| — \K | < |J| — |I| < k + 1. By applying the induction on the witness graph ttk(G) and 
the state ttk(p), we deduce that there exists a run vrx(p) — > y such that 7rj(p) — > 7rj (G) 71 J (y) 
with \u\ < ^2\x\<n<\J\ ^n +1 ~ n an d such that y(j) > A|j| for every j G J. We introduce the 
word v = au. Since / is strictly included in K we deduce that X/|/|<n<|A'| -^n +1 ~™ — ^m+r 
ThusM^Ei/K^uiA^ 1 -" 

Since A is an adapted extractor we deduce that A|^| > ll-A-||oo S|x|<n<|J| ^n +1_n + \ 
From p(k) > A|^-| for every k G K we deduce that p(k) > HAHoolul + A|j|. Since there exists 
a run from vr/<(p) labelled by u, Lemma [3. II shows that there exists a run p z. For every 
k G K we have z(/c) > p(A;) — HAIloo^ > Aiji. As p A z we deduce that vrx(p) — > vrx(z). 
In particular 7T_r-(z) = y. Let j G J\K. From the previous equality we get z(j) = y(j). 
Moreover since y(j) > A|j| we get z(j) > Aiji. We have proved that z(j) > A|j| for every 
j G J. Hence the induction is proved. □ 

Now let us prove Theorem 19.11 We consider a witness graph G with a set of states 
Q C Nj. We also consider a positive integer s G N>o and we introduce the positive integers 
a = 1 1 Alloc an d x = (1 + a)s. Let A be the adapted extractor defined by A^ = s and the 
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following induction for every n G {2, . . . , d}: 

A n -i = A^(l + 1 1 A| |oo) 

An immediate induction provides A^ +1 ~ n < x dd for every n G {1, ...,d}. We introduce 
the minimal excluding set J for (A, Q). Observe that if \J\ = d then |7Tj(Q)| = 1 and 
in particular |7Tj(Q)| < x d . If |J| < d, the number of states in vrj(Q) is bounded by 
A^ji^. Hence |-7rj(Q)| < x d<i in any case. Let us consider q G Q such that ||q||oo < s. 
Lemma [9.21 shows that there exists a run q x with x(j) > Aiji for every j G J such that 
^./(q) ~*wj(G) 7r j( x ) an d such that: 

kl <XX +1 ~ n 

n=l 

Since ttj(G) is strongly connected there exists a path 7Tj(x) — > 7rj (G) ^./(q)- We can assume 
that the length of u is minimal. In particular u = e if J = {1, . . . , d} and \u\ < Aj^^] 

otherwise. In both case \au\ < dx d . Since A is an adapted extractor we deduce that 
x (j) > \u\ HAjloo for every j G J and by applying Lemma 13.11 we deduce that there exists 
a run x — » y. Since 7Tj(x) A- 7Tj(q) we deduce that y(j) = q(j) for every j g" J. Moreover 
if j G J\I since y(j) > s and s > ||q||oo we get y(i) > q(i)- We deduce that q < y and 
J\I = {i | q(i) 7^ y(*)}- Therefore q is forward pumpable by the cycle 7Tj(q) — > 7r/ (G) ^(q)- 
Symmetrically we prove the backward case. We have proved Theorem 19.11 



10. Deciding The Reversibility Problem 

In this section, the reversible reachability problem is proved to be EXPSPACE-complete. 
The proof is inspired by the Kosaraju ideas [Kos82| . A word a G A* is said to be reversible 

on a configuration p if there exists a word f3 G A* such that p — > p and A(a) + A(/3) = 0. 
Note that if p is a standard configuration the last condition is implied by the first one. 

Theorem 10.1. Let a G A* be a reversible word on a configuration p. There exists another 
word a' G A* reversible on p such that A(a) = A(a') and such that: 

< 17d 2 x l5dd+2 

where x = (1 + 2||A||oo) (1 + | |p| |oo + 1 1 A(a;) | |oo) . 

Let us assume that a G A* is a reversible word on a configuration p G Nj. There exists 

a run p — > p satisfying A(a) + A(/3) = 0. From this run we extract a unique witness graph 

a/3 

G = (Q, T) such that p — >g p is a total cycle. In particular the Parikh image of this cycle 
is a total Kirchhoff function proving that G is reversible by Lemma 17.21 

We introduce a = HAH^ and s = 1 + ||p||oo + l|A(a)||oo- Let q = p + A/(a). We have 
||q||oo < IIpIIoo + HA^^loo < s. Let us introduce x = (1 + 2a)s. Theorem 19.11 shows that 
there exists a set of indexes J such that vrj(G) has at most x dd states and such that p is 
forward pumpable by a cycle 7rj(p) — ^j(g) ^/(p) an( i Q i s backward pumpable by a cycle 
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^./(q) ~~^wj(G) 7r j(ci) suc h that |f |, \w\ < dx di . In particular Aj(v) and — A/ (to) are two 
vectors in {c € | c(i) 7^ 44> z £ J}. For every n € N we have: 

p — ► p + nAj(u) q — nAj(w) — > q 
Since the witness graph G is reversible, Lemma [7.21 shows that vrj(G) is reversible. From 
Theorem [7]3] we deduce that the zero vector is the displacement of a total Kirchhoff function 
[i for 7Tj(G) satisfying: 

IHIoo<(x dd (l + 2a))^ +1 ) 

< (x dd x) 2d2 

< (x 2di f d2 

< x Add+2 

Note that \ttj(T)\ < |vrj(Q)| \A\ < x d \l + 2a) d < x 2d& . 

Lemma 10.2. There exists a cycle 7Tj(q) —^^jOG) vrj(q) such that A(v) + A(u) + A(w) = 
and: 

\u\ < 3d x 7dd+2 

Proof. Let li v ,fj, w be the Parikh images of vrj(p) -^(g) vrj(p) and vrj(q) ^^(G) ^j(q)- 
We introduce the function A = (1 + 2dx dd )fi — (/j, v + /j, w ). Observe that A is a Kirchhoff 
function for irj(G) satisfying \(t) > (l + 2dx dd ) — 2dx dd > 1 for every t € ttj(T). The Euler's 
Lemma shows that A is the Parikh image of a total cycle vrj(q) — > 7rj (G) 7r j( t l)- Observe that 
A(n) = (1 + 2dx dd )0 - (A(v) + A(w)). Hence A(v) + A(u) + A(w) = 0. The length of u is 
bounded by: 

|u| = (l + 2dx dd )iJ,(t) - (//„(*) + ii w {t)) < 3dx dd WhW^tt j(T)\ < 3dx 7dd+2 □ 

Lemma 10.3. There exists a path vrj(p) — > 7r/ (G) ^jCq) smc/i that A(d) = A(a) and: 

\a\ < 2x 7d 

Proof. Since ttj(G) is strongly connected, there exists a path vrj(q) A- 7rj (G) ^(p)- We can 
assume that |/3| is minimal. In particular < x dd . Moreover, we know that 7Tj(p) — > 7rj (G) 
7Tj(q). Observe that a/? is the label of a cycle in ttj(G). Hence z = A (a) + A(/3) is the 
displacement of a Kirchhoff function for G. We have ||z||oo < ||^( Q; )||oo + ||A(/3)|| 00 < s+|/3|a 
we get | |z| |oo < s + x d " a < x dd (l + a). Theorem 16.31 shows that z is the displacement of a 
Kirchhoff function 6 for G such that: 

||0||oo < {(x dd ) d+l a{l + 2a) d + x dd (l + a)) d 
<(x 2dd+1 ax d + x d \l + a)) d 
<(x 3dd+1 (l + 2a)) d 

< (x 3dd+1 x) d 

< x 4dd+2 
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We introduce the Parikh image / of the path vrj(q) — >^j{g) 7F j(p)- Let us add to the 
strongly connected graph vrj(G) an additional transition i. from 7Tj(q) to vrj(p) and let G, 
be this new graph and T, = ttj(T) U {t.} be its set of transitions. Functions 9, jj, and / are 
extended over T. by 9(t 9 ) = fJ,(t 9 ) = f(t m ) = 0. We also introduce the Parikh image /, of t m , 
i.e. /,(i») = 1 and f,(t) = for every t 6 vrj(T). Let us observe that g = 9 + x dd [J, — / + /. 
satisfies g(t) > 1 for every t G ttj(T) since f(t) < x d . A = 1 we deduce that g 

is a Kirchhoff function for G. satisfying g(i) > 1 for every t £ T«. The Euler's Lemma 
shows that 5 is the Parikh image of a total cycle. Since g(t 9 ) = 1 we deduce that g is the 

Parikh image of a cycle of the form (7Tj(p) — > 7rj (G) ^(q)) By definition of 5 we get 

A(d) = z + x d<i - A(/3) + 0. Hence A(a) = z - A(/3). Since z = A(a) + A(/3) we get 
A(a) = A(a). The following inequalities provide the lemma: 

< \*j(T)\ \\e\loo +X dd \7Tj(T) 1 Halloo 



2 , 



< 2x 7dd+2 □ 

Lemma 10.4. For every n > \u\a we have: 

q + nAj(v) — > q — nAj(w) 

Proof. Let n > |it|a. We introduce the sequence (xfc)o<fc<n 01 configurations = q + (n — 
k)Aj(v) — kAj(w). Since 7rj(xfc) = vrj(q) we deduce that there exists a run from 7rj(x / t) 
labelled by u. Moreover as Aj(v)(j) > 1 and — Ai(w)(j) > 1 for every j G J, we deduce 
that Xfc(j) > n > |u|a for every j € J. Lemma 13.11 shows that there exists a run from x& 
labelled by u. Since A(v) + A (it) + A(w) = we get x^ — > x^+i. □ 

Lemma 10.5. For every n > |a|a we have: 



p + n.Aj(u) q + n-Aj(u) 

Proof. Observe that 7rj(p + nA;(u)) = vrj(p) and vrj(p) A- 7rj(q). Moreover for every 
j £ J we have (p + nAj(v))(j) > n > \a\a. From Lemma 13.11 we deduce that there exists 
a run from p + nAj(v) labelled by a. From p A- q we deduce that p + Aj(a) = q. Since 
A(a) = A (a) we deduce that p + Aj(a) = q. We deduce the run p + nAj(v) A- q + nAj(v). 

□ 

Finally, let n = amax{|d|, |u|}. We have proved that p q where a' = v n au n w n . 
Note that A(a') = A (a) since A(a) = A(a) and A(v) + A(u) + A(w) = 0. We deduce that 

A(a') = A(a). As q — > p with A(a) + A(/3) = we deduce that a' is reversible on p. Note 
that n < a3dx 7d,d+2 < 3dx sdd+2 . Hence we have: 

\a'\ < 2x 7dd+2 + 3dx sdd+2 (2dx dd + 3dx 7dd+2 ) 

< I7d 2 x 15dd+2 

We have proved Theorem 110. li 

Corollary 10.6. Two standard configurations p, q are in the same strongly connected com- 
et p 

ponent of a standard subreachability graph if and only if there exist runs p — > q and q — > p 
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such that: 

|a|,|/3| <17d 2 x l ™ d+2 
where x = (1 + 2||A|| 00 )(1 + 2max{||p|| 00 , ||q||t»})- 

Theorem 10.7. The reversible reachability problem is EXPSPACE-complete. 

11. Application : Reversibility Domains 

During the execution of a VAS some actions are reversible and some not. More precisely, 
let D a be the set of standard configurations c such that there exists a word a satisfying 
c A c + a c. We observe that the set D a is an upward closed set for the order <. In 
fact c A- c + a —± c implies the same thing by replacing c with a standard configuration 
x S c + N rf . So D a is characterized by its finite set of minimal elements min(D a ) for <. As 
an application of Theorem llO.il we obtain the following result. 

Theorem 11.1. Configurations c € min(D a ) satisfy the following inequality where a = 

1 1 I loo- 

Hclloo < (102dV)( 15dd+2 ) d+2 

Proof. Observe that if a = we are done since in this case c = 0. So we can assume that 
a > 1. We introduce the extractor A = (Ai, . . . , A^) defined by A^+i = a and the following 
induction for n £ {1, . . . , d + 1}: 

A n _! = 17d 2 (6aA n ) 1Md+2 

Let c £ min(D a ) and let d = c + a. Let us consider the minimal excluding set / for (A, {d}). 
By minimality of / we have d(i) < Ai/m i for every i g" / and d(i) > A|/| for every i £ I. 
We consider the standard configuration y defined by y(i) = A|/| if i £ / and y(i) = d(i) if 
i ^ I. Let us consider q = 717(c) and p = 717(d). Since c £ D a there exists a run d c. 
In particular p — > q — > p with A(a) + A (a) = 0. We deduce that a is reversible on p and 
Theorem 110.11 shows that there exists a word a' such that p q, A(a') = A (a) and: 

\a'\ < 17d 2 x 15dd+2 

where x = (1 + 2a)(l + ||p||oo + || a ||oo)- Note that ||p||oo < ^l-TI+l — ^- We deduce that 
x < (1 + 2a)(Aiji_|_i + a) < 6aAi/i + i since 1 < a and a < Hence a\a'\ < A|/| thanks 

to the induction defining A. Since 717 (y) = p we deduce that there exists a run from 77 (y) 
labelled by a'. As y(i) > A|/| > a\a'\ for every i € /, Lemma 13.11 shows that there exists 

a run y x. Since A(a') = A(a) = —a we deduce that x = y — a. From y < d we get 

x < c by subtracting a. Moreover as x A y x we deduce that x G D a . By minimality 
of c we get c = x. Hence c = y — a. In particular ||c||oo < A|/| + a < Ao + a. Finally 
let us get a bound on Ao- We get the equality A n _i = cA^ by introducing e = 15d d+2 and 
c = 17(i 2 (6a) e . Hence A < (ca) ed+1 < (102d 2 a 2 ) ed+2 and from e d+2 < (15d d+2 ) d+2 we are 
done. □ 
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Conclusion 

The reversible reachability problem is proved to be EXPSPACE-complete in this paper. The 
proof is inspired by the Rackoff and Kosaraju ideas [Rac78„ Kos82j . We have introduced the 
domain of reversibility D a of every action a 6 A. Observe that the reflexive and transitive 
closure of the following relation R is a congruence and from |BF97| we deduce that this 
relation is definable in the Presburger arithmetic. That means there exist a Presburger 
formula (f> that exactly denotes the pair (x, y) of standard configurations in the reversible 
reachability relation. As a future work we are interested in characterizing precisely the size 
of such a formula (we already derive an elementary bound from [BF97J and Theorem II Lip . 

R = (J{(x,x + a) |x€D a } 

aGA 

The general vector addition system reachability problem was recently proved to be 
decidable thanks to inductive invariants definable in the Presburger arithmetic [Lerlla] . The 
proof is based on binary relations called transformer relations over Q> where Q>o is the 
set of non-negative rational numbers. The transformer relation of a standard configuration 
c E N d is the binary relation over Q> defined by x rv y if there exists a run from c + nx 
to c + ray for some n € N. This relation is proved to be definable in FO (Q, +, <) in [Lerllaj . 
The proof is based on witness graphs. However, no upper bound on the size of these graphs 
are derived. As a future work we are interested in adapting techniques introduced in this 
paper for proving elementary upper-bounds on sizes of formulas in FO (Q, +, <) denoting 
transformer relations. Our main objective is the complexity of the general vector addition 
system reachability problem. 
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